Need recommendations for removing sticky access for termed users

Prashanth1812 · September 28, 2025, 1:07am

Hi All,

Need help if you ran into this scenario, TIA

Scenario:

ISC is adding back access to a termed user thru identity refresh even after most of the access are being revoked automatically and adding old entitlements back which were once added through API request.

Note: I have enabled remove all access from UI. Also, we have a before provisioning rule in place to remove all access if LCS = inactive.

Jetendrakumar1991 · September 28, 2025, 8:48am

Hi @Prashanth1812 , you can read below blog & i am sure, you will get your solution.

UjjwalJain · September 28, 2025, 9:46am

Hi @Prashanth1812,

You can make use of workflows to raise an access revoke request and remove all of the user’s access.

iamnithesh · September 28, 2025, 1:05pm

Inside your BP rule, add this to each of the Remove Entitlement Attribute Requests

attributeRequest.put("assignment", true);

system · November 27, 2025, 1:06pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Remove all Access when user state changes from Inactive to Terminated ISC Discussion and Questions workflows , identity-security-cloud	11	376	November 22, 2024
Removing all Access at once for a specific application ISC Discussion and Questions identity-security-cloud , provisioning , roles , access-requests , entitlements	13	1171	August 22, 2023
Remove access from workflow ISC Discussion and Questions workflows , identity-security-cloud , roles	24	2486	July 11, 2023
Sticky Entitlements ISC Discussion and Questions workflows , identity-security-cloud , access-requests , connectors , entitlements	6	416	February 25, 2025
Removal of Entitlements added via API ISC Discussion and Questions apis , identity-security-cloud , entitlements	2	729	December 17, 2023

Need recommendations for removing sticky access for termed users

Related topics